Techly NewsGet the app

Get the latest tech news

XZ 5.6.2 Released With The Frightening Backdoor Removed


It was two months ago today that an urgent security alert was issued over XZ being hit by malicious code that turned out to be a backdoor within liblzma added by a bad actor that worked his way into XZ co-maintainership

It was two months ago today that an urgent security alert was issued over XZ being hit by malicious code that turned out to be a backdoor within liblzma added by a bad actor that worked his way into XZ co-maintainership. Lasse Collin also announced that Sam James has stepped up as a supporting maintainer moving forward for the XZ project. The IFUNC support was used by the XZ backdoor but the removal of this code is coming because the performance benefits of using it were too small while adding much complexity.

Get the Android app

Or read this on Phoronix

Read more on:

Photo of frightening backdoor

frightening backdoor

Photo of xz 5.6.2

xz 5.6.2

« Salesforce Shares Plunge by Most Since 2008 After Weak Outlook
Multi-day DDoS storm batters Internet Archive »